Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: 00H/1XVHBFjOXBkM/JagzeetUyPTHhUQFqSZsGKMsbU=
Subject key identifier: AF:18:CC:9D:FE:C9:A5:98:38:69:4A:51:AB:C1:7C:0B:11:CB:EC:AA
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 01936AEB8529A600182D3A502D98174D98CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 0B07
Signing time: Wed 27 Nov 2024 00:00:40 +0000
Manifest this update: Wed 27 Nov 2024 00:00:40 +0000
Manifest next update: Thu 28 Nov 2024 00:00:40 +0000
Files and hashes: 1: Dt6rrxVfzPOoWqGJY5TydqUVpNo.roa (hash: J/6QHlMTaNS+SylufhMpQaH1BvnWkPmT4CI1AhjINtg=)
2: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: Q5w4OMUMy9mgt6K3FaZDIQEW8vlBbfMMGg9Tp7wwfwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:eb:85:29:a6:00:18:2d:3a:50:2d:98:17:4d:98:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Nov 27 00:00:40 2024 GMT
Not After : Nov 28 00:00:40 2024 GMT
Subject: CN=af18cc9dfec9a59838694a51abc17c0b11cbecaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9d:d2:7b:bc:4e:1a:61:0c:96:fb:98:8b:72:
78:c4:f5:6d:d4:ae:6f:07:2a:bc:dc:77:86:9a:31:
ff:f4:c2:09:44:64:0b:f9:0b:0e:e4:cd:55:9a:27:
de:42:e8:cf:1e:12:5c:38:52:cb:0f:27:c3:79:a0:
1c:97:c7:1d:5d:88:9e:b7:a0:ca:9e:9a:83:be:6e:
d5:3b:ca:62:2a:ae:c2:0a:b9:50:df:b8:23:05:45:
c1:db:c4:e9:86:96:45:36:d4:ef:d5:3c:4a:2f:fd:
4b:54:80:9d:3e:22:d8:1b:6f:7e:7e:2e:e3:18:ba:
f7:08:5e:52:bc:9c:6a:85:92:7e:e6:6c:10:bd:eb:
39:38:b3:da:bc:fa:29:06:8a:25:ef:ff:a8:b4:2c:
29:da:60:8c:8e:f8:9a:91:25:71:6d:72:f9:dc:86:
86:f3:79:cb:7d:00:5b:1b:f8:25:69:c6:4d:0c:68:
dd:f6:50:78:60:d1:db:06:2d:34:28:0a:64:f9:a2:
f1:6f:25:cd:3c:a5:31:10:58:dd:d1:2c:47:db:2c:
90:e0:c7:5d:83:ba:87:a7:04:cc:cc:c1:a3:25:5e:
4e:68:c4:7b:7c:a2:b7:94:da:8a:10:4f:d5:5e:54:
32:a0:c5:5c:68:e8:ae:80:2a:af:bc:b1:1a:d7:a5:
15:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:18:CC:9D:FE:C9:A5:98:38:69:4A:51:AB:C1:7C:0B:11:CB:EC:AA
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:51:3b:67:bf:e3:bf:18:9e:c1:3e:3c:57:12:a3:e8:c4:4f:
9c:f0:5c:f5:5b:36:77:8d:2f:b5:15:ce:7c:a3:80:6c:18:4a:
6d:f2:75:4e:1a:aa:df:d7:a9:52:c1:a9:e3:6e:2d:34:b7:b6:
5a:04:2e:e5:1d:5e:58:c5:49:54:db:5e:78:f3:86:07:a9:8f:
7c:50:20:38:ad:d8:e9:7e:e9:a0:15:bb:7a:63:16:8b:72:e1:
f2:4c:50:91:ed:83:24:f9:40:65:42:27:5c:20:0e:a9:b4:8b:
a4:cf:94:d6:4c:c3:08:bb:23:52:1a:cb:6d:a1:dc:9d:3d:dd:
08:fb:20:76:43:38:48:89:4b:e1:4f:35:4f:e8:0d:01:31:be:
82:a0:e6:f8:48:34:b2:a3:b6:73:74:b0:9e:5f:6b:13:22:51:
0e:c3:1f:23:b5:df:40:8e:f7:82:bc:cb:4c:d5:bc:29:06:04:
bb:65:93:f1:a9:90:5c:cc:d5:01:69:e6:e5:29:bf:d2:c4:ac:
ba:66:1a:5e:15:8f:e4:82:b4:e9:57:e6:6c:0d:6c:a1:f5:38:
d0:5f:43:93:69:db:59:6b:16:74:3b:d9:28:87:a3:69:f5:d0:
8a:b1:c2:69:40:13:8b:7d:b3:63:0e:e0:b4:73:d5:dc:e1:61:
f2:2c:8e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:47:53 2024 by rpki-client on console-fra.rpki-client.org